|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: /dev/rob0 (rob0
gmx.co.uk)
Date: Fri May 02 2008 - 13:27:06 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Fri May 2 2008 09:51:00 Matthias Leopold wrote:
> Brian Evans schrieb:
> > Matthias Leopold wrote:
> >> a lookup for "userdomain.tld" in virtual_mailbox_maps yields a
> >> result /etc/postfix/virtual_mailbox_domains does not contain
> >> "domain.tld" /etc/postfix/virtual_alias only contains
> >> "userdomain.tld" as a remote destination
> >>
> >> when i try to relay mail to "userdomain.tld" via my server i get
> >> "relaying denied". this is what i expect. when i try to relay mail
> >> to "userdomain.tld" after successful smtp authentication postfix
> >> tries to deliver locally. this is contrary to what i thought. is
> >> there a way to make this work other than deleting
> >> "userdomain.tld" from virtual_mailbox_maps?
A virtual_mailbox_maps listing for "userdomain.tld" is meaningless
unless domain.tld is in virtual_mailbox_domains.
> > My "guess" would be you have your domain in mydestination.
> >
> > No one here can help further without posting `postconf -n`.
> > Substitute example.(com|net|org) instead of your own domain if you
> > so desire.
>
> the domain in question is definitely not in $mydestination, since the
> problem arises for all virtual domains
Then perhaps your virtual_mailbox_domains lookup is the problem. For a
hash: map:
example.com put
example.net anything
domain.tld here
> # postconf -n
You have a lot of default settings in there.
> smtpd_client_restrictions = permit_mynetworks,
See the ongoing thread about Zen for some good RBL advice.
> reject_unauth_pipelining,
You have this in several places except for the one where it might do
something: it should be in smtpd_data_restrictions. See
postconf.5.html#reject_unauth_pipelining for information. (You have
"html_directory = no" which is unfortunate. Good idea to keep the
documentation handy.)
> smtpd_sender_restrictions = permit_mynetworks,
> permit_sasl_authenticated,
> reject_unknown_sender_domain,
> reject_non_fqdn_sender,
> reject_unauth_pipelining,
> reject_sender_login_mismatch,
Oops, you already accepted that with permit_sasl_authenticated above.
Order of restrictions (in each stage) is very important.
> transport_maps = ldap:/etc/postfix/ldapmaps/virtual_transport.cf
What is the purpose of this? If you don't know why you have
transport_maps, you probably shouldn't have it set.
> virtual_mailbox_domains = hash:/home2/var/virtual_relay_domains
As above, this is probably where the problem lies. The file name is
interesting, and appears to be misleading. Generally it's better
administrative practice to keep the map filenames associated with the
Postfix functionality they implement.
transport_maps is another suspect.
If you still don't have enough clues to find the problem on your own,
your followup post should include complete logging of one of the
problem messages along with relevant line[s] in virtual_mailbox_domains
and postmap -q output for the subject domain and userdomain from the
ldap:/etc/postfix/ldapmaps/virtual_transport.cf query.
--
Offlist mail to this address is discarded unless
"/dev/rob0" or "not-spam" is in Subject: header
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]